cbcvebase.
CVE-2016-2961
published 2016-07-02

CVE-2016-2961: The integration server in IBM Integration Bus 9 before 9.0.0.6 and 10 before 10.0.0.5 and WebSphere Message Broker 8 before 8.0.0.8 allows remote attackers to…

medium5.3CVSS 3.0
AVNACLPRNUINSUCLINAN
The integration server in IBM Integration Bus 9 before 9.0.0.6 and 10 before 10.0.0.5 and WebSphere Message Broker 8 before 8.0.0.8 allows remote attackers to obtain sensitive Tomcat version information by sending a malformed POST request and then reading the Java stack trace.

Affected

19 ranges
VendorProductVersion rangeFixed in
ibmintegration_bus
ibmintegration_bus
ibmintegration_bus
ibmintegration_bus
ibmintegration_bus
ibmintegration_bus
ibmintegration_bus
ibmintegration_bus
ibmintegration_bus
ibmintegration_bus
ibmintegration_bus
ibmwebsphere_message_broker
ibmwebsphere_message_broker
ibmwebsphere_message_broker
ibmwebsphere_message_broker
ibmwebsphere_message_broker
ibmwebsphere_message_broker
ibmwebsphere_message_broker
ibmwebsphere_message_broker